Senior Security Engineer - Node.js Proactive Defense (remote-only)

1 month ago
Full-time
Senior
Software Development
CloudLinux

CloudLinux

CloudLinux is a leading provider of the CloudLinux OS, a platform for Linux web hosting that offers next-level performance and security. With a focus on optimizing web hosting environments, CloudLinux helps service providers improve density, stability,...

IT Services
51-250
Founded 2009

Description

  • Own the Node.js Proactive Defense initiative as a new runtime security layer for Imunify360.
  • Design and ship a Node.js runtime agent that hooks into the V8/Node lifecycle to trace and block malicious behavior patterns.
  • Define the detection model, including default-blocking versus signal-only behaviors, and manage rule authoring, distribution, and versioning.
  • Integrate Node.js detections, blocks, and incidents into the existing Imunify telemetry pipeline, backend event store, and admin UI.
  • Ensure the agent is production-safe for shared hosting with low overhead, tenant isolation, and compatibility with CageFS and LVE.
  • Build the pipeline that turns CVE write-ups and threat-intel feeds into shipped detections.
  • Generate, test, and roll out rule candidates from advisories and exploit primitives.
  • Own the feedback loop from production blocks, false positives, and evasions into future rule improvements.
  • Design the solution to operate as a first-class layer of Imunify360 rather than a standalone tool.

Requirements

  • Security engineer mindset focused on attack surfaces, exploit primitives, and defense-in-depth.
  • Ability to read a CVE write-up and reconstruct the exploit primitive.
  • Knowledge of runtime exploitation patterns such as prototype pollution, deserialization, command injection, SSRF, path traversal, and supply-chain poisoning.
  • Systems-level development experience with Linux daemons, systemd, privileged processes, IPC, namespaces/cgroups, file-descriptor hygiene, and signal hygiene.
  • Low-level instrumentation experience with technologies such as LD_PRELOAD, eBPF, ptrace, JVM agents, Python sys.settrace, language-runtime preload, or kernel modules.
  • Understanding of why common exploit primitives exist, not just familiarity with their names.
  • Shared-hosting or multi-tenant Linux experience, including LVE, CageFS, control panels, or similar tenant-isolation work (nice to have).
  • Comfort using CVEs and threat-intel feeds as primary product input (nice to have).

Benefits

  • Fully remote work with flexible working hours worldwide.
  • Paid 24 days of vacation per year plus 10 national holidays.
  • Unlimited sick leave.
  • Private medical insurance coverage.
  • Co-working and gym/sports reimbursement.
  • Budget for education and professional development.
  • Opportunity to earn a reward for the most innovative patentable idea.
  • Interesting and challenging projects.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Active Directory / Identity Engineer

Keywords Studios 10K-50K Internet Software & Services

Keywords Group is seeking an experienced Active Directory SME and Azure Identity Lead to guide company-wide identity architecture and support global IT across on-premises and cloud environments.

Active Directory Cybersecurity DHCP DNS PowerShell
13 hours, 22 minutes ago

Senior Security Compliance Engineer

Klaviyo 1K-5K IT Services

Klaviyo is seeking a Senior Security Compliance Engineer to help its Security Trust & Risk team automate and scale compliance operations, continuous monitoring, and GRC tooling across a fast-growing AI-first B2C CRM platform.

AWS CI/CD Go HIPAA Kubernetes Python REST API SQL
14 hours, 7 minutes ago

Website Security Engineer

PetDesk 51-250 Health Care Providers & Services

PetDesk is hiring a Website Security Specialist to protect its website portfolio by preventing vulnerabilities, responding to incidents, and maintaining secure technical operations across the full site lifecycle.

WordPress
14 hours, 7 minutes ago

Principal AI Security Specialist - Federal

Zscaler 1K-5K Internet Software & Services

Zscaler is hiring a Principal AI Security Specialist to lead field-facing enterprise AI security engagements, helping Fortune 500 customers adopt GenAI securely across complex sales cycles.

Cybersecurity Generative AI LLM
1 day, 13 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers